c5b619acee6528fad812fd4210ceebc8d674e2bc493d63679653237784303d39 | Triage

Sharing

General

Target

2024-09-19_36096d28466e90a188f4fd1d5ddcfb68_cryptolocker
Size

39KB
Sample

240919-f5m3hstaqj
MD5

36096d28466e90a188f4fd1d5ddcfb68
SHA1

cca3a2b6e90a82f18d7353b8bbc726719bc09a69
SHA256

c5b619acee6528fad812fd4210ceebc8d674e2bc493d63679653237784303d39
SHA512

ee093c84f8522f237d929f25e37dad0d3954c865cfd85952b6362d285f53af77e7f7b102b5cecb1e2a2df340e244c79e32b5cf53f8692f6a2b95c82c5b69a37c
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFCw06:X6QFElP6n+gJQMOtEvwDpjBmzDU56

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_36096d28466e90a188f4fd1d5ddcfb68_cryptolocker
- Size
  
  39KB
- MD5
  
  36096d28466e90a188f4fd1d5ddcfb68
- SHA1
  
  cca3a2b6e90a82f18d7353b8bbc726719bc09a69
- SHA256
  
  c5b619acee6528fad812fd4210ceebc8d674e2bc493d63679653237784303d39
- SHA512
  
  ee093c84f8522f237d929f25e37dad0d3954c865cfd85952b6362d285f53af77e7f7b102b5cecb1e2a2df340e244c79e32b5cf53f8692f6a2b95c82c5b69a37c
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFCw06:X6QFElP6n+gJQMOtEvwDpjBmzDU56
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2